The Long Road to Computational Location Privacy: A Survey

Primault, Vincent; Boutet, Antoine; Mokhtar, Sonia Ben; Brunie, Lionel

doi:10.1109/comst.2018.2873950

Cited by 128 publications

(67 citation statements)

References 130 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…LPAuditor offers a comprehensive analysis of the privacy loss caused by location metadata by also exploring whether the remaining locations can be used to infer personal information that is typically considered sensitive. While the inference of sensitive information has been one of the main motivations behind prior research on location-privacy [61], such automated attacks have not been demonstrated in practice. Our system examines tweets that place the user at (or in close proximity of) locations that are associated with such information.…”

Section: Introductionmentioning

confidence: 99%

Please Forget Where I Was Last Summer: The Privacy Risks of Public Location (Meta)Data

Drakonakis¹,

Ilia

Ioannidis

et al. 2019

Proceedings 2019 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

The exposure of location data constitutes a significant privacy risk to users as it can lead to de-anonymization, the inference of sensitive information, and even physical threats. In this paper we present LPAuditor, a tool that conducts a comprehensive evaluation of the privacy loss caused by publicly available location metadata. First, we demonstrate how our system can pinpoint users' key locations at an unprecedented granularity by identifying their actual postal addresses. Our experimental evaluation on Twitter data highlights the effectiveness of our techniques which outperform prior approaches by 18.9%-91.6% for homes and 8.7%-21.8% for workplaces. Next we present a novel exploration of automated private information inference that uncovers "sensitive" locations that users have visited (pertaining to health, religion, and sex/nightlife). We find that location metadata can provide additional context to tweets and thus lead to the exposure of private information that might not match the users' intentions.We further explore the mismatch between user actions and information exposure and find that older versions of the official Twitter apps follow a privacy-invasive policy of including precise GPS coordinates in the metadata of tweets that users have geotagged at a coarse-grained level (e.g., city). The implications of this exposure are further exacerbated by our finding that users are considerably privacy-cautious in regards to exposing precise location data. When users can explicitly select what location data is published, there is a 94.6% reduction in tweets with GPS coordinates. As part of current efforts to give users more control over their data, LPAuditor can be adopted by major services and offered as an auditing tool that informs users about sensitive information they (indirectly) expose through location metadata.

show abstract

Section: Introductionmentioning

confidence: 99%

Please Forget Where I Was Last Summer: The Privacy Risks of Public Location (Meta)Data

Drakonakis¹,

Ilia

Ioannidis

et al. 2019

Proceedings 2019 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

show abstract

“…A major technique widely used for showing amount of privacy is k‐anonymity. () It states that at least k‐1 other users should have the same property as the one which the user is exposing (POI in our work). As the framework we are working on is a collection of mobiles transferring data between themselves using WiFi, they cannot be too far from each other because no communication will be achieved if they are far.…”

Section: Resultsmentioning

confidence: 98%

Improving energy efficiency in information‐centric mobile ad‐hoc networks using places of interest while respecting privacy

Sepahkar

Khayyambashi

2019

Int J Communication

View full text Add to dashboard Cite

The fact that network users mostly look for content regardless of its location has led to the creation of information-centric networks with NDN (named data networking project) as the most famous instance. NDN can be implemented in any type of network including MANET (mobile ad-hoc network) which can be easily created among a collection of smartphones. The first step for content retrieval in NDN is propagating interest packets which has a dramatic effect on energy consumption because of wireless communications. Methods have been devised for limiting the amount of packet propagation. But they are not appropriate for smartphones either because they require multiple WiFi interfaces which is not available in usual smartphones or because they require the exact position of nodes which conflicts privacy. In our proposed approach, a single WiFi interface is used, and mobile nodes will share only an imprecise version of their current and their predicted next location, which complies much better with privacy.Using this information, the amount of interest and data packets will decrease of more than 15%. When location information is spread through the network, this reduction will be almost doubled. KEYWORDSad-hoc network, information-centric network, interest packet forwarding, location prediction, mobile network INTRODUCTIONInformation-centric networks (ICN) are becoming more and more favorite because they comply with the real need of users from the base. Looking for content instead of content location is what users have been doing from long ago, and CDNs and P2P networks have all been devised for addressing this need. 1,2 But the only solution which solves the problem from the scratch is ICN, with NDN (named data networking project) 3 as its most famous instance. In these networks, the required content is retrieved by the consumer rather than being pushed by the producer. This consumer-based data retrieval, along with caching as one of the pillars of NDN, makes mobility well supported in NDN. Location independence of NDN makes it an excellent candidate for mobile ad-hoc networks (MANET) in which mobility is always a problem. 4 The possibility of creating direct network connections among devices was the cause of MANET emergence. WiFi enabled devices, such as smartphones, are able to create a network between themselves without needing any infrastructure, as long as they are within the coverage area of each other's WiFi interface. Special situations like wildlife monitoring Int J Commun Syst. 2019;32:e3945.wileyonlinelibrary.com/journal/dac

show abstract

“…Diante deste fato, diversas técnicas de proteçãoà privacidade têm sido propostas, como os algoritmos de anonimização baseados em pseudônimos. Um pseudônimoé um mecanismo de proteção a privacidade que consiste em substituir dados reais e sensitivos por identificadores que não tenham nenhuma associação com estes dados reais (Primault et al, 2018). Por exemplo, durante a publicação dos dados de localização de um veículo, as informações sensíveis como as placas dos veículos são substituídas por identificadores com o intuito de desassociar a identidade real do veículo 1 .…”

Section: Mix-zones: Um Esquema De Proteçãoà Privacidadeunclassified

“…A re-identificaçãoé uma das abordagens de ataqueà privacidade que parte do princípio de identificar trajetórias anonimizadas e, consequentemente, conhecer as identidades a partir de um conjunto limitado de informações sobre a entidade-alvo (Primault, Boutet, Mokhtar, & Brunie, 2018). Esseé um ataque que também pode ser a "porta de entrada" para outros que têm como alvo uma entidade específica.…”

Section: Introductionunclassified

Re-identificação de trajetórias de veículos baseada na caracterização das preferências de caminho

Mattos¹,

Domingues²,

Loureiro³

2019

Anais Do XXXVII Simpósio Brasileiro De Redes De Computadores E Sistemas Distribuídos (SBRC 2019)

View full text Add to dashboard Cite

Vehicular mobility traces are datasets of vehicles location in a region with high spatiotemporal precision. Access to this sensitive information can threaten the safety and privacy of drivers, such as analyzing this data makes it possible to discover other contextual and latent information, such as users daily home routes or workplaces address. In this way, many obfuscation and anonymization techniques have been proposed to mitigate the problem of user location privacy. In this work, we analyze an anonymization technique called mix-zone, where selected urban regions promote the simultaneous anonymization of vehicles by changing their pseudonym. We show how information about drivers behavior in a city, such as their road preferences, can be used to re-identify their trajectories. We present a simple and efficient re-identification technique that uses only two geo-referenced points as input data. We validate our technique with a real dataset of taxi cabs, being able to reidentify up to 95% of anonymised trajectories.

show abstract

The Long Road to Computational Location Privacy: A Survey

Cited by 128 publications

References 130 publications

Please Forget Where I Was Last Summer: The Privacy Risks of Public Location (Meta)Data

Please Forget Where I Was Last Summer: The Privacy Risks of Public Location (Meta)Data

Improving energy efficiency in information‐centric mobile ad‐hoc networks using places of interest while respecting privacy

Re-identificação de trajetórias de veículos baseada na caracterização das preferências de caminho

Contact Info

Product

Resources

About